|Publication number||US7031471 B2|
|Application number||US 09/778,005|
|Publication date||18 Apr 2006|
|Filing date||7 Feb 2001|
|Priority date||28 Feb 1997|
|Also published as||EP0862318A2, EP0862318A3, US6233684, US7765403, US8205089, US8667289, US20010008557, US20060059562, US20100037061, US20120317419, US20140208120|
|Publication number||09778005, 778005, US 7031471 B2, US 7031471B2, US-B2-7031471, US7031471 B2, US7031471B2|
|Inventors||Mark J. Stefik, Glen W. Petrie, Steve A. Okamoto, Nicholas H. Briggs|
|Original Assignee||Contentguard Holdings, Inc.|
|Export Citation||BiBTeX, EndNote, RefMan|
|Patent Citations (102), Non-Patent Citations (51), Referenced by (31), Classifications (27), Legal Events (3)|
|External Links: USPTO, USPTO Assignment, Espacenet|
This application is a Divisional application of Ser. No. 08/948,893, filed Oct. 10, 1997, now U.S. Pat. No. 6,233,684, which claims priority from U.S. Provisional Application Ser. No. 60/039,275 filed Feb. 28, 1997.
The present invention relates to the field of distribution and usage rights enforcement for digitally encoded works, and in particular to identification of non-authorized copies of digitally encoded works that have been rendered.
Pending U.S. patent application Ser. No. 08/344,042 filed Nov. 29, 1996, incorporated herein by reference, describes a system which provides for the secure and accounted for distribution of digitally encoded works (hereinafter digital works). However, once a digital work leaves the digital domain, e.g. it is printed out, played or otherwise rendered, it is not longer secure and can be subjected to unauthorized copying. This is a problem for all rendered digital works.
Two known techniques for protecting digital works by imparting information onto the digital document are “watermarking” and “fingerprinting”. The term watermark historically refers to a translucent design impressed on paper during manufacture which is visible when the paper is held to the light. Because watermarks are impressed using combinations of water, heat, and pressure, they are not easy to add or alter outside of the paper factory. Watermarks are used in making letterheads and are intended to indicate source and that a document is authentic and original and not a reproduction.
One technique for creating such a watermark when a digital work is printed is described in U.S. Pat. No. 5,530,759 entitled “Color Correct Digital Watermarking of Images” issued Jun. 25, 1996. In this approach the watermark image is combined with the digital image to created the watermarked image. The watermark image acts as a template to change the chromacity of corresponding pixels in the digital image thus creating the watermark. In any event, these notices server as social reminders to people to not make photocopies.
The term watermark is now used to cover a wide range of technologies for marking rendered works, including text, digital pictures, and digital audio with information that identifies the work or the publisher. Some watermarks are noticeable to people and some are hidden. In some kinds of watermarks, the embedded information is human readable, but in other kinds the information can only be read by computers.
The term fingerprint is sometimes used in contrast with watermarks to refer to marks that carry information about the end user or rendering event rather than the document or publisher. These marks are called “fingerprints” because they can be used to trace the source of a copy back to a person or computer that rendered the original.
The same technologies and kinds of marks can be used to carry both watermark and fingerprint information. In practice, it is not only possible but often desirable and convenient to combine both kinds of information—for watermarks and fingerprints—in a single mark.
With respect to paper based documents, the simplest approach to providing a mark is a graphical symbol or printed notice that appears on each page. This is analogous to a copyright notice. Such notices can be provided by the publisher in the document source or added later by a printer. These notices serve as social reminders to people to not make photocopies.
Other approaches hide information in the grey codes (or intensity) on a page. Although in principle such approaches can embed data in greycode fonts, their main application so far has been for embedding data in photographs. One set of approaches is described by Cox et al. in a publication entitled “Secure spread spectrum watermarking for Multimedia”, NEC Research Institute Technical Report 95-10, NEC Research Institute, Princeton, N.J. 08540. To decode data encoded in the approached described by Cox et al. requires comparing the encoded picture with the original to find the differences. The advantage of these approaches is that they can embed the data in such a way that it is very difficult to remove, not only by mechanical means but also by computational means.
As described above, watermarks need not be perceptible to the viewer. For example, one technique is to embed data in the white space of a document. An example of this kind of approach was described by Brassil, et al. In a publication entitled “Electronic marking and identification techniques to discourage document copying”, IEEE Journal on Selected Areas in Communications, Vol. 13, No. 8 pages 1495-1504, October 1995. The idea is to slightly vary the spacing of letters and lines in a digital work. The advantages of this approach are that it is not visible and is hard to remove. The disadvantage is that it has a very limited capacity for carrying data—only a few bytes per page.
Another watermarking scheme for use in digital works representing images is available from the Digimarc Corporation. The Digimarc watermark is invisible and is used to convey ownership information relating to the image. From the Digimarc World Web Page describing their technology (URL http://www.digimarc.com/wt_page.html): “A Digimarc watermark imitates naturally occurring image variations and is placed throughout the image such that it cannot be perceived. To further hide the watermark, the Digimarc watermarking process is perceptually adaptive—meaning it automatically varies the intensity of the watermark in order to remain invisible in both flat and detailed areas of an image.” Reading of the Digimarc watermark is through a Digimarc reader which can extract the watermark from the image.
Other prior art relating to embedding data in a print medium includes Daniele, U.S. Pat. No. 5,444,779, on “Electronic Copyright Royalty Accounting System for Using Glyphs”, which discloses a system for utilizing a printable, yet unobtrusive glyph or similar two-dimensionally encoded mark to identify copyrighted documents. Upon attempting to reproduce such a document, a glyph is detected, decoded and used to accurately collect and/or record a copyright royalty for the reproduction of the document or to prevent such reproduction. Furthermore, the glyph may also include additional information so as to enable an electronic copyright royalty accounting system, capable of interpreting the encoded information to track and/or account for copyright royalties which accrue during reproduction of all or portions of the original document.
A trusted rendering system for use in a system for controlling the distribution and use of digital works is disclosed. The currently preferred embodiment of the present invention is implemented as a trusted printer. However, the description thereof applies to any rendering device. A trusted printer facilitates the protection of printed documents which have been printed from a system which controls the distribution and use of digital works. The system for controlling distribution and use of digital works provides for attaching persistent usage rights to a digital work. Digital works are transferred in encrypted form between repositories. The repositories are used to request and grant access to digital works. Such repositories are also coupled to credit servers which provide for payment of any fees incurred as a result of accessing a digital work.
The present invention extends the existing capabilities of the system for controlling distribution and use of digital works to provide a measure of protection when a document is printed. The present invention adds to the system the ability to include watermark information to a document when it is rendered (i.e. a Print right associated with the document is exercised). In the currently preferred embodiment of a trusted printer, the watermark is visible. However, other “invisible” watermarking technologies may also be used. The watermark data typically provides information relating to the owner of a document, the rights associated with that copy of the document and information relating to the rendering event (e.g. when and where the document was printed). This information will typically aid in deterring or preventing unauthorized copying of the rendered work. It is worth noting that the present invention further provides for multiple types of watermarks to be provided on the same digital work.
Specification of the watermark information is preferably added to a document at the time of assigning render or play rights to the digital work. With respect to printed digital works, at the time of page layout special watermark characters are positioned on the document. When the document is printed, a dynamically generated watermark font is created which contains the watermark information specified in the print right. The font of the watermark characters are changed to the dynamically generated watermark font. The dynamically generated watermark font is created using an embedded data technology such as the glyph technology developed by the Xerox Corporation and described in U.S. Pat. No. 5,486,686 entitled “Hardcopy Lossless Data Storage and Communications For Electronic Document Processing Systems”, which is assigned to the same assignee as the present application.
A trusted rendering device for minimizing the risk of unauthorized copying of rendered digital works is described. The risk of unauthorized copying of digital documents comes from three main sources: interception of digital copies when they are transmitted (e.g., by wiretapping or packet snooping); unauthorized use and rendering of digital copies remotely stored, and unauthorized copying of a rendered digital work. The design of trusted rendering devices described herein addresses all three risks.
Trusted rendering combines four elements: a usage rights language, encrypted on-line distribution, automatic billing for copies, and digital watermarks for marking copies that are rendered.
The currently preferred embodiment of the present invention is implemented as a trusted printer. The foregoing description will be directed primarily to printers, but the concepts and techniques described therein apply equally to other types of rendering systems such as audio players, video players, displays or multi-media players.
Overview of a System for Controlling the Distribution and Use of Digital Works.
The currently preferred embodiment of the present invention operates in a system for controlling the distribution and use of digital works is as described in co-pending U.S. patent application Ser. No. 08/344,042, entitled “System for Controlling the Distribution and Use of Digital Works” and which is herein incorporated by reference. A digital work is any written, audio, graphical or video based work including computer programs that have been translated to or created in a digital form, and which can be recreated using suitable rendering means such as software programs. The system allows the owner of a digital work to attach usage rights to the work. The usage rights for the work define how it may be used and distributed. Digital works and their usage rights are stored in a secure repository. Digital works may only be accessed by other secure repositories. A repository is deemed secure if it possesses a valid identification (digital) certificate issued by a Master repository.
The usage rights language for controlling a digital work is defined by a flexible and extensible usage rights grammar. The usage rights language of the currently preferred embodiment is provided in Appendix A. Conceptually, a right in the usage rights grammar is a label attached to a predetermined behavior and defines conditions to exercising the right. For example, a COPY right denotes that a copy of the digital work may be made. A condition to exercising the right is the requester must pass certain security criteria. Conditions may also be attached to limit the right itself. For example, a LOAN right may be defined so as to limit the duration of which a work may be LOANed. Conditions may also include requirements that fees be paid.
A repository is comprised of a storage means for storing a digital work and its attached usage rights, an external interface for receiving and transmitting data, a processor and a clock. A repository generally has two primary operating modes, a server mode and a requester mode. When operating in a server mode, the repository is responding to requests to access digital works. When operating in requester mode, the repository is requesting access to a digital work.
Generally, a repository will process each request to access a digital work by examining the work's usage rights. For example, in a request to make a copy of a digital work, the digital work is examined to see if such “copying” rights have been granted, then conditions to exercise the right are checked (e.g. a right to make 2 copies). If conditions associated with the right are satisfied, the copy can be made. Before transporting the digital work, any specified changes to the set of usage rights in the copy are attached to the copy of the digital work.
Repositories communicate utilizing a set of repository transactions. The repository transactions embody a set of protocols for establishing secure session connections between repositories, and for processing access requests to the digital works. Note that digital works and various communications are encrypted whenever they are transferred between repositories.
Digital works are rendered on rendering systems. A rendering systems is comprised of at least a rendering repository and a rendering device (e.g. a printer, display or audio system). Rendering systems are internally secure. Access to digital works not contained within the rendering repository is accomplished via repository transactions with an external repository containing the desired digital work. As will be described in greater detail below, the currently preferred embodiment of the present invention is implemented as a rendering system for printing digital works.
Communication with an authorization repository 102 may occur when a digital work being accessed has a condition requiring an authorization. Conceptually, an authorization is a digital certificate such that possession of the certificate is required to gain access to the digital work. An authorization is itself a digital work that can be moved between repositories and subjected to fees and usage rights conditions. An authorization may be required by both repositories involved in an access to a digital work.
Communication with a rendering repository 103 occurs in connection with the rendering of a digital work. As will be described in greater detail below, a rendering repository is coupled with a rendering device (e.g. a printer device) to comprise a rendering system.
Communication with a master repository 105 occurs in connection with obtaining an identification certificate. Identification certificates are the means by which a repository is identified as “trustworthy”. The use of identification certificates is described below with respect to the registration transaction.
A rendering system is generally defined as a system comprising a repository and a rendering device which can render a digital work into its desired form. Examples of a rendering system may be a computer system, a digital audio system, or a printer. In the currently preferred embodiment, the rendering system is a printer. In any event, a rendering system has the security features of a repository. The coupling of a rendering repository with the rendering device may occur in a manner suitable for the type of rendering device.
Also illustrated in
The core repository services 311 comprise a set of functions required by each and every repository. For a trusted printer repository the core repository services will include engaging in a challenge response protocol to receive digital works and decryption of received digital data.
The print repository functions 312 comprise functionality for rendering a work for printing as well as gathering data for and creating a digital watermark. The functionality unique to a print repository will become apparent in the description below (particularly with respect to the flowchart of FIG. 11).
Basic Steps for Digital Work Creation for Printing on a Trusted Printer
Repository 2 then receives a user request to print the digital work, step 404. Repository 2 then establishes a trusted session with a printer repository of the printing system on which the digital work will be printed, step 405. The printer repository receives the encrypted digital work and determines if it has a print right, step 406. If the digital work has the print right, the printer repository decrypts the digital work and generates the watermark that will be printed on the digital work, step 407. The printer repository then transmits the decrypted digital work with the watermark to a printer device for printing, step 408. For example, the decrypted digital work may be a Postscript™ file of the digital work.
Controlling Printing with the Usage Rights Grammar
A key concept in governing sale, distribution, and use of digital works is that publishers can assign “rights” to works that specify the terms and conditions of use. These rights are expressed in a rights language as described in co-pending application Ser. No. 08/344,042. The currently preferred grammar is provided herein in Appendix A. It is advantageous to specify watermark information within a rendering or play right within the grammar for a number of reasons. First, specification in this manner is technology independent. So different watermarking technologies may be used or changed without altering the document. Second, multiple watermarking technologies may be applied to the same digital work, e.g. a visible watermarking technology and an invisible watermarking technology. So if the visible watermark is removed, the invisible one may remain. Third, the watermark information to be placed on the digital work can be associated with the rendering event, rather than the distribution event. Fourth, the watermark information can be extended to include the entire distribution chain of the digital work. Fifth, security and watermarking capabilities of a rendering system may be specified as a condition rendering. This will further insure the trusted rendering of the digital work.
As a result of these advantages, this type of specifying watermark information fully supports the Superdistribution of digital works. Superdistribution is distribution concept where every possessor of a digital work may also be a distributor of the digital work, and wherein every subsequent distribution is accounted for.
When a publisher assigns rights to a digital work, the usage rights enables them to distinguish between viewing (or playing) rights and print rights. Play rights are used to make ephemeral, temporary copies of a work such as an image of text on a display or the sound of music from a loudspeaker. Print rights are used to make durable copies, such as pages from a laser printer or audio recordings on a magnetic media.
Example—Trusted Printing from a Personal Computer
Usage rights are specified individually and as part of a group of rights. The Rights-Group 504 has been given a name of “Regular”. The bundle label provides for a fee payee designation 505 and a minimum security level 506 that are applied to all rights in the group. The fee payee designation 505 is used to indicate who will get paid upon the invocation of a right. The minimum security level 506 is used to indicate a minimum security level for a repository that wishes to access the associated digital work.
The rights in the group are then specified individually. The usage rights specify no fee for transferring 508, deleting 509 or playing 510, but does have a five dollar fee for making a digital copy 507. It also has two Print rights 511 and 512, both requiring a trusted printer (specified by 513). The first Print right 511 can be exercised if the user has a particular prepaid ticket (specified by 514). The second print right has a flat fee of ten dollars (specified by 515). The example assumes that the digital work can be transmitted to a user's computer by exercising the Copy right, and that the user can play or print the work at his or her convenience using the Play and Print rights. Fees are logged from the user's workstation whenever a right is exercised.
Also illustrated in
Example—Trusted Printing to an Internet Printer
Also illustrated in
Watermarks and Fingerprints
Three main requirements for watermarks on trusted printers have been identified:
In the currently preferred embodiment, watermarks are created with embedded data technology such as glyph technology developed by the Xerox corporation. Glyph technology as it is used as embedded data printed on a medium is described in U.S. Pat. No. 5,486,686 entitled “Hardcopy Lossless Data Storage and Communications For Electronic Document Processing Systems”, which is incorporated by reference herein. Using glyphs as digital watermarks on printed documents is described in co/pending application Ser. No. 08/734,570 entitled “Quasi-Reprographics With Variable Embedded Data With Applications To Copyright Management, Distribution Control, etc.”, which is assigned to the same assignee as the present application and is incorporated by reference herein.
Generally, embedded data technology is used to place machine readable data on a printed medium. The machine readable data typically is in a coded form that is difficult if not impossible for a human to read. Another example of an embedded data technology is bar codes.
Embedded data technology can be used to carry hundreds of bits of embedded data per square inch in various grey patterns on a page. Preferably, glyphs are used because the marks representing the encoded data can be used to create marks which are more aesthetically appealing then other embedded data technologies. With careful design, glyphs can be integrated as graphical elements in a page layout. Glyphs can be used with any kind of document. Glyph watermarks to carry document identification can be embedded by the publisher; while glyphs carrying data about a print event can be added to the watermark at the time of printing by a printing system. Both document identification and fingerprinting data can be embedded in the same watermark.
It should be noted that a disadvantage of glyphs and with all forms of visible and separable watermarks, is that with mechanical or computational effort, they can be removed from a document.
Integrating Embedded Data as Watermarks Into Trusted Printing Systems
This section describes briefly how embedded data technology can be used in trusted printing systems to embed watermarking data. How glyphs and watermark data are handled at each stage in creating, publishing, and printing a document is discussed.
It has been determined that for integrating embedded data such as glyphs into trusted printing systems, the requirements include:
Herein the term media-dependent data is used to refer to information about how a watermark is located and shaped within the document content. The approach depends on the use of Usage Rights to express the data to be encoded in the watermark.
Publishers use a wide variety of tools to create documents. Different text editors or word processors provide different ways and degrees of control in laying out text, pictures and figures. One thing that all text editors have is a way to locate text on a page. In effect, this is a lowest common denominator in abilities for all systems.
Exploiting this common capability provides insight about how to use glyphs to represent watermarks:
In practice, a designer laying out a document would open a page of a glyph catalog containing glyph boxes of different sizes. The glyph boxes in the catalog would probably contain just test data, e.g. a glyph ASCII encoding of the words “test pattern glyph Copyrightę Xerox Corporation 1997. All Rights Reserved”. The designer would determine ahead of time how much data he wants to encode per page, such as 100, 300, 500, or 1000 bytes. The designer would copy a “box” (actually a character) of the corresponding size into their document and locate it where they want it on the page, typically incorporating it as a design element.
Note that the glyph encoded watermarks can also be placed in figures, since drawing programs also have the capability to locate characters on a page.
When the creator saves their work, the document creation program writes a file in which characters in the glyph font are used to represent the watermarks. If the creator prints the document at this stage, he will see more or less what the final sold versions will look like except that the test data encoded in the gray tones of the glyph box will later be replaced by the dynamically generated watermark data.
Specifying Watermark Data
When the author or publisher gets ready to publish the work and import it into a system for controlling distribution use of digital works, one of the steps is to assign rights to the work using a Rights Editor. The Rights Editor is a program with which a document owner specifies terms and conditions of using a digital work.
This is the point at which document identification data and also print event data are specified.
The next steps for the digital work are that it is published and distributed. During this process, the digital work is protected by the encryption and other security systems that are employed and the rights travel with the document. Part of this process assures that any printer or workstation that has a copy of the document also has digital certificates which contain information identifying the trusted system, trusted printer, user, and so on (a process described in more detail in co-pending application Ser. No. 08/344,042).
A computation is then performed to gather together the information to be embedded in the watermark and to incorporate it into a new font for the watermark character. First the information must be gathered from digital identification certificates belonging to the user or the trusted printer, such as names, locations, and the current date and time, step 1105. This information is “printed” internally into computer memory, creating a bitmap image of glyph boxes of different sizes, step 1106. Creation and coding of glyphs is described in the aforementioned U.S. Pat. No. 5,486,686, thus no further discussion on the encoding of glyph patterns is deemed necessary. In any event, this information is then assembled into a font definition, step 1107.
The digital work is then decrypted and downloaded into the printer, step 1108. When the digital work is downloaded into the printer, part of the protocol is also to download the new “revised” glyph font, which now has characters corresponding to glyph boxes. This font looks more or less like the one that the publisher used in creating the document, except that the gray codes inside the font boxes now embed the data that the publisher wants to appear in the watermarks on the document.
The printer then prints the digital work, step 1109. When the document is printed, the glyphs that appear on the pages contain the desired watermark data.
Reading the Embedded Data Contained in the Watermark
Note that the means for extraction of the watermark data is dependent on the technology used to embed the watermark data. So while the actual extraction steps may vary, they do not cause departure from the spirit and scope of the present invention.
In the following, two embodiments of trusted printer implementations are described: desktop implementations for personal printers and print server implementations for larger workgroup and departmental printers.
There is a large and growing install base of personal printers. Typically, such printers are connected to personal computers by serial output ports. In other cases, they are installed on small local area networks serving a few offices.
To serve this market a “trust box” is provided which would be positioned in between the personal computer and the personal printer. The “trust box” would act as a print repository for the trusted printer system. This is a market where the purchase of such hardware would be justified by the convenience of digital delivery to the office, for those documents that publishers are unwilling to send in the clear (i.e. not encrypted). The cost of the trust box offsets either waiting for mail delivery or driving to another location to pick up trusted printer output.
From a conceptual perspective, the personal computer combined with the trust box and printer form a trusted system. The trust box implementation would work with other system elements as illustrated in the steps of the flowchart of FIG. 14.
Once a work is selected the two repositories begin a purchase transaction, step 1403. As described in application Ser. No. 08/344,042, there are several variations for billing. For concreteness, it is assumed that there is a billing account associated with the trust box.
Using a helper application (or equivalent), the consumer's repository sends a digital certificate to the distributor which contains the trust box's public key, step 1404. The certificate itself is signed by a well-known repository, such as the printer's manufacturer.
The distributor repository encrypts the document using DES or some other encryption code, step 1405. The encryption uses a key length that is compatible with requirements of security and legal constraints. The distributor repository encrypts the document key in an envelope signed by the public key of the printer box, step 1406. The distributor repository then sends the encrypted document and the envelope along to the consumer's workstation.
The personal computer stores the encrypted document in its repository along with the envelope containing the key, step 1407.
At some point, the user decides to print the document. Using a print program, he issues a print request, step 1408. His personal computer contacts the trust box, retrieving its identity certificate encrypted in its public key, step 1409. It looks up the watermark information in certificates from the user, the computer itself, and the printer, step 1410. It downloads the watermark font to the printer through the trust box, step 1411.
The print program begins sending the document, one page at a time to the trust box, step 1412.
The trust box contacts the printer. It decrypts the document giving the document key to a decryption means (e.g. an internal decryption chip), step 1413. It transmits the document to the printer in the clear, step 1414. Note that this is one place where a digital copy could be leaked, if a printer emulator was plugged into the print box to act like a printer. Presumably the security level of the trust box is set to a value that reflects the level of risk. The document is then printed, step 1415.
The trusted print box design is intended to meet several main design objectives as follows:
Installed Base. This approach is intended to work within the current installed base of desktop or personal printers. Installing a trusted print box requires loading software and plugging standard serial cables between the printer, the trusted print box, and the computer.
Security. The approach inhibits unauthorized photocopying through the use of glyph watermarks. The approach inhibits digital copying by storing digital works in an encrypted form, where the consumer workstation does not have access to the key for decrypting the work.
Printer Limitations. The approach assumes that the user will plug the trusted print box into a standard printer. The printer is assumed to not have the capability of storing extra copies of the digital work.
Building box in Printer. Variations of this approach include incorporating the trusted print box into the printer itself. That variation has the advantage that it does not present the document in the clear along any external connectors.
Weak Link. A weak link in this approach is that there is an external connector that transmits the document in the clear. Although this is beyond the average consumer, it would be possible to build a device that sits between the trusted printer box and the printer that would intercept the work in the clear.
Billing Variations. In the version presented here, the trusted print box has secure storage and programs for managing billing records. A simpler version of the approach would be to keep track of all billing on-line. For example, one way to do this would be to have the document printing start at the time that the customer orders it. In this variation, the document is still sent in encrypted form from the publisher, through the consumer's workstation, decrypted, and sent to the trusted print box, to the printer. The difference is that the trusted print box no longer needs to keep billing records and that the consumer must start printing the document at the time that the document is ordered.
Software-only Variation. Another variation on the desktop printing solution involves only software. The consumer/client purchases the work and orders the right to print it once. The on-line distributor delivers the work, encrypted, one page at a time. The consumer workstation has a program that decrypts the page and sends it to the printer with watermarks, and then requests the next page. At no time is a full decrypted copy available on the consumer's computer. The weak link in this approach is that the consumer's computer does gain access to copies of pages of the work in the clear. Although this would be beyond the average consumer, it would be possible to construct software either to mimic runtime decryption software or modify it to save a copy of the work, one page at a time.
Printer Server Implementations
Much of the appeal of trusted printers is to enable the safe and commercial printing of long documents. Such printing applications tend to require the speed and special features of large, shared printers rather than personal printers. Provided herein is an architecture for server-based trusted printers.
Besides the speed and feature differences of the print engines themselves, there are some key differences between server-based trusted printers and desktop trusted printers.
These basic properties of server-based printers create their own risks for document security which need to be addressed. In addition, since server-based printers tend to be high volume and expensive, it is important that the trusted system features not significantly slow down competitive printer performance.
From a conceptual perspective, the print server (including network services and spooling) combined with the printer forms a trusted system.
In abstract and functional terms, the operation of the server implementation is similar to that of the trust box implementation. The difference is that the server performs many of the operations of the trust box.
There are many variations on how the print server may need to interoperate with the other system elements. For example, the transaction with the printer may be with the user's computer or with an on-line repository that the user is communicating with. In the following, the transaction is described as happening from a repository, although that repository may be the user's own computer.
The server implementation would work with other system elements as illustrated in the steps of the flowchart of FIG. 16. Referring to
The distributor encrypts the document using DES or some other code, using a key length that is compatible with requirements of security and legal constraints, step 1602. It encrypts the document key in an envelope signed by the public key of server, step 1603. It sends the encrypted document to the server, step 1604.
Note that in some versions of this architecture, different levels of encryption and “scrambling” (less secure) are used on the document at different stages in the server. It is generally important to protect the document in all places where it might be accessed by outside parties. The use of lower security encoding is sometimes used to avoid potentially-expensive decryption steps at critical stages that would slow the operation of the printer.
In any event, the server stores the encrypted document, step 1605. At some point, the spooler gets ready to print the document. Before starting, it runs a process to create a new version of the glyph font that encodes the watermark data, step 1606. It looks up the required watermark information in its own certificates as well as certificates from the repository and user.
Finally, the spooler begins imaging the document, one page at a time, step 1607.
Thus, trusted rendering systems for use in a system for controlling the distribution and use of digital works are disclosed. While the present invention is described with respect to a preferred embodiment, it would be apparent to one skilled in the art to practice the present invention with other configurations of information retrieval systems. Such alternate embodiments would not cause departure from the spirit and scope of the present invention.
|Cited Patent||Filing date||Publication date||Applicant||Title|
|US3263158||15 Aug 1963||26 Jul 1966||Motorola Inc||Saturable reactor voltage control circuit|
|US3609697||21 Oct 1968||28 Sep 1971||Ibm||Program security device|
|US3790700||17 Dec 1971||5 Feb 1974||Hughes Aircraft Co||Catv program control system|
|US3798605||30 Jun 1971||19 Mar 1974||Ibm||Centralized verification system|
|US4159468||17 Nov 1977||26 Jun 1979||Burroughs Corporation||Communications line authentication device|
|US4220991||21 Sep 1978||2 Sep 1980||Tokyo Electric Co., Ltd.||Electronic cash register with removable memory packs for cashier identification|
|US4278837||4 Jun 1979||14 Jul 1981||Best Robert M||Crypto microprocessor for executing enciphered programs|
|US4323921||23 Jan 1980||6 Apr 1982||Etablissement Public De Diffusion Dit "Telediffusion De France"||System for transmitting information provided with means for controlling access to the information transmitted|
|US4442486||25 Nov 1981||10 Apr 1984||U.S. Philips Corporation||Protected programmable apparatus|
|US4529870||25 Jun 1982||16 Jul 1985||David Chaum||Cryptographic identification, financial transaction, and credential device|
|US4558176||20 Sep 1982||10 Dec 1985||Arnold Mark G||Computer systems to inhibit unauthorized copying, unauthorized usage, and automated cracking of protected software|
|US4593376||21 Apr 1983||3 Jun 1986||Volk Larry N||System for vending program cartridges which have circuitry for inhibiting program usage after preset time interval expires|
|US4614861||15 Nov 1984||30 Sep 1986||Intellicard International, Inc.||Unitary, self-contained card verification and validation system and method|
|US4644493||14 Sep 1984||17 Feb 1987||International Business Machines Corporation||Implementing a shared higher level of privilege on personal computers for copy protection of software|
|US4658093||11 Jul 1983||14 Apr 1987||Hellman Martin E||Software distribution system|
|US4713753||21 Feb 1985||15 Dec 1987||Honeywell Inc.||Secure data processing system architecture with format control|
|US4817140||5 Nov 1986||28 Mar 1989||International Business Machines Corp.||Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor|
|US4827508||14 Oct 1986||2 May 1989||Personal Library Software, Inc.||Database usage metering and protection system and method|
|US4868376||15 May 1987||19 Sep 1989||Smartcard International Inc.||Intelligent portable interactive personal data system|
|US4891838||4 Nov 1985||2 Jan 1990||Dental Data Service, Inc.||Computer accessing system|
|US4924378||13 Jun 1988||8 May 1990||Prime Computer, Inc.||License mangagement system and license storage key|
|US4932054||16 Sep 1988||5 Jun 1990||Chou Wayne W||Method and apparatus for protecting computer software utilizing coded filter network in conjunction with an active coded hardware device|
|US4937863||7 Mar 1988||26 Jun 1990||Digital Equipment Corporation||Software licensing management system|
|US4949187||16 Dec 1988||14 Aug 1990||Cohen Jason M||Video communications system having a remotely controlled central source of video and audio data|
|US4953209||31 Oct 1988||28 Aug 1990||International Business Machines Corp.||Self-verifying receipt and acceptance system for electronically delivered data objects|
|US4961142||29 Jun 1988||2 Oct 1990||Mastercard International, Inc.||Multi-issuer transaction device with individual identification verification plug-in application modules for each issuer|
|US4975647||1 Nov 1988||4 Dec 1990||Nova Biomedical Corporation||Controlling machine operation with respect to consumable accessory units|
|US4977594||16 Feb 1989||11 Dec 1990||Electronic Publishing Resources, Inc.||Database usage metering and protection system and method|
|US4999806||4 Sep 1987||12 Mar 1991||Fred Chernow||Software distribution system|
|US5010571||10 Sep 1986||23 Apr 1991||Titan Linkabit Corporation||Metering retrieval of encrypted data stored in customer data retrieval terminal|
|US5014234||25 Aug 1986||7 May 1991||Ncr Corporation||System with software usage timer and counter for allowing limited use but preventing continued unauthorized use of protected software|
|US5023907||30 Sep 1988||11 Jun 1991||Apollo Computer, Inc.||Network license server|
|US5047928||3 Jan 1989||10 Sep 1991||Wiedemer John D||Billing system for computer software|
|US5050213||6 Aug 1990||17 Sep 1991||Electronic Publishing Resources, Inc.||Database usage metering and protection system and method|
|US5052040||25 May 1990||24 Sep 1991||Micronyx, Inc.||Multiple user stored data cryptographic labeling system and method|
|US5058164||3 May 1990||15 Oct 1991||National Semiconductor Corp.||Encryption of streams of addressed information to be used for program code protection|
|US5103476||7 Nov 1990||7 Apr 1992||Waite David P||Secure system for activating personal computer software at remote locations|
|US5113519||15 May 1989||12 May 1992||International Business Machines Corporation||Maintenance of file attributes in a distributed data processing system|
|US5136643||20 Dec 1990||4 Aug 1992||Fischer Addison M||Public/key date-time notary facility|
|US5138712||2 Oct 1989||11 Aug 1992||Sun Microsystems, Inc.||Apparatus and method for licensing software on a network of computers|
|US5146499||22 Oct 1990||8 Sep 1992||U.S. Philips Corporation||Data processing system comprising authentification means viz a viz a smart card, an electronic circuit for use in such system, and a procedure for implementing such authentification|
|US5148481||1 Jul 1991||15 Sep 1992||International Business Machines Corporation||Transaction system security method and apparatus|
|US5159182||12 Dec 1989||27 Oct 1992||Smartdiskette Gmbh||Smart data storage device|
|US5183404||8 Apr 1992||2 Feb 1993||Megahertz Corporation||Systems for connection of physical/electrical media connectors to computer communications cards|
|US5191193||9 Oct 1990||2 Mar 1993||Gemplus Card International||System of payment or information transfer by money card with electronic memory|
|US5204897||14 Jul 1992||20 Apr 1993||Digital Equipment Corporation||Management interface for license management system|
|US5222134||9 Apr 1991||22 Jun 1993||Tau Systems Corporation||Secure system for activating personal computer software at remote locations|
|US5235642||21 Jul 1992||10 Aug 1993||Digital Equipment Corporation||Access control subsystem and method for distributed computer system using locally cached authentication credentials|
|US5247575||24 Apr 1992||21 Sep 1993||Sprague Peter J||Information distribution system|
|US5255106||5 Feb 1991||19 Oct 1993||International Integrated Communications, Ltd.||Method and apparatus for delivering secured hard-copy facsimile documents|
|US5260999||15 Sep 1992||9 Nov 1993||Digital Equipment Corporation||Filters in license management system|
|US5263157||15 Feb 1990||16 Nov 1993||International Business Machines Corporation||Method and system for providing user access control within a distributed data processing system by the exchange of access control profiles|
|US5263158||15 Feb 1990||16 Nov 1993||International Business Machines Corporation||Method and system for variable authority level user access control in a distributed data processing system having multiple resource manager|
|US5276444||23 Sep 1991||4 Jan 1994||At&T Bell Laboratories||Centralized security control system|
|US5276735||17 Apr 1992||4 Jan 1994||Secure Computing Corporation||Data enclave and trusted path system|
|US5291596||16 Feb 1993||1 Mar 1994||Fuji Xerox Co., Ltd.||Data management method and system with management table indicating right of use|
|US5301231||12 Feb 1992||5 Apr 1994||International Business Machines Corporation||User defined function facility|
|US5311591||3 Jun 1993||10 May 1994||Fischer Addison M||Computer system security method and apparatus for creating and using program authorization information data structures|
|US5319705||21 Oct 1992||7 Jun 1994||International Business Machines Corporation||Method and system for multimedia access control enablement|
|US5337357||27 Jul 1993||9 Aug 1994||Software Security, Inc.||Method of software distribution protection|
|US5339091||14 Oct 1992||16 Aug 1994||Semiconductor Energy Laboratory Co., Ltd.||Paperless portable book|
|US5341429||4 Dec 1992||23 Aug 1994||Testdrive Corporation||Transformation of ephemeral material|
|US5347579||22 Feb 1993||13 Sep 1994||Blandford Robert R||Personal computer diary|
|US5381526||11 Sep 1992||10 Jan 1995||Eastman Kodak Company||Method and apparatus for storing and retrieving generalized image data|
|US5394469||18 Feb 1994||28 Feb 1995||Infosafe Systems, Inc.||Method and apparatus for retrieving secure information from mass storage media|
|US5410598||27 Sep 1994||25 Apr 1995||Electronic Publishing Resources, Inc.||Database usage metering and protection system and method|
|US5412717||15 May 1992||2 May 1995||Fischer; Addison M.||Computer system security method and apparatus having program authorization information data structures|
|US5428606||30 Jun 1993||27 Jun 1995||Moskowitz; Scott A.||Digital information commodities exchange|
|US5432849||10 Aug 1993||11 Jul 1995||International Business Machines Corporation||Secure cryptographic operations using control vectors generated inside a cryptographic facility|
|US5438508||12 Sep 1994||1 Aug 1995||Digital Equipment Corporation||License document interchange format for license management system|
|US5444779||29 Jul 1994||22 Aug 1995||Xerox Corporation||Electronic copyright royalty accounting system using glyphs|
|US5453601||15 Nov 1991||26 Sep 1995||Citibank, N.A.||Electronic-monetary system|
|US5455953||3 Nov 1993||3 Oct 1995||Wang Laboratories, Inc.||Authorization system for obtaining in single step both identification and access rights of client to server directly from encrypted authorization ticket|
|US5457746||19 Dec 1994||10 Oct 1995||Spyrus, Inc.||System and method for access control for portable data storage media|
|US5473687||29 Dec 1993||5 Dec 1995||Infosafe Systems, Inc.||Method for retrieving secure information from a database|
|US5473692||7 Sep 1994||5 Dec 1995||Intel Corporation||Roving software license for a hardware agent|
|US5499298||17 Mar 1994||12 Mar 1996||National University Of Singapore||Controlled dissemination of digital information|
|US5502766||26 Oct 1993||26 Mar 1996||Secure Computing Corporation||Data enclave and trusted path system|
|US5504814||24 Jan 1994||2 Apr 1996||Hughes Aircraft Company||Efficient security kernel for the 80960 extended architecture|
|US5504818||30 Sep 1994||2 Apr 1996||Okano; Hirokazu||Information processing system using error-correcting codes and cryptography|
|US5504837||10 May 1993||2 Apr 1996||Bell Communications Research, Inc.||Method for resolving conflicts among distributed entities through the generation of counter proposals by transversing a goal hierarchy with acceptable, unacceptable, and indeterminate nodes|
|US5509070||15 Dec 1992||16 Apr 1996||Softlock Services Inc.||Method for encouraging purchase of executable and non-executable software|
|US5530235||16 Feb 1995||25 Jun 1996||Xerox Corporation||Interactive contents revealing storage device|
|US5530759||1 Feb 1995||25 Jun 1996||International Business Machines Corporation||Color correct digital watermarking of images|
|US5532920||28 Dec 1994||2 Jul 1996||International Business Machines Corporation||Data processing system and method to enforce payment of royalties when copying softcopy books|
|US5534975||26 May 1995||9 Jul 1996||Xerox Corporation||Document processing system utilizing document service cards to provide document processing services|
|US5539735||28 Dec 1994||23 Jul 1996||Moskowitz; Scott A.||Digital information commodities exchange|
|US5563946||25 Apr 1994||8 Oct 1996||International Business Machines Corporation||Method and apparatus for enabling trial period use of software products: method and apparatus for passing encrypted files between data processing systems|
|US5568552||7 Jun 1995||22 Oct 1996||Intel Corporation||Method for providing a roving software license from one node to another node|
|US5621797||19 Dec 1995||15 Apr 1997||Citibank, N.A.||Electronic ticket presentation and transfer method|
|US5629980||23 Nov 1994||13 May 1997||Xerox Corporation||System for controlling the distribution and use of digital works|
|US5633932||19 Dec 1995||27 May 1997||Intel Corporation||Apparatus and method for preventing disclosure through user-authentication at a printing node|
|US5634012||23 Nov 1994||27 May 1997||Xerox Corporation||System for controlling the distribution and use of digital works having a fee reporting mechanism|
|US5638443||23 Nov 1994||10 Jun 1997||Xerox Corporation||System for controlling the distribution and use of composite digital works|
|US5649013||23 Dec 1994||15 Jul 1997||Compuserve Incorporated||Royalty tracking method and apparatus|
|US5655077||13 Dec 1994||5 Aug 1997||Microsoft Corporation||Method and system for authenticating access to heterogeneous computing services|
|US5708717||29 Nov 1995||13 Jan 1998||Alasia; Alfred||Digital anti-counterfeiting software method and apparatus|
|US5734823||25 Jul 1996||31 Mar 1998||Microtome, Inc.||Systems and apparatus for electronic communication and storage of information|
|US5734891||12 Jun 1996||31 Mar 1998||Saigh; Michael M.||Systems and apparatus for electronic communication and storage of time encoded information|
|US6442285 *||8 Dec 2000||27 Aug 2002||Digimarc Corporation||Controlling operation of a device using a re-configurable watermark detector|
|US6522769 *||18 May 2000||18 Feb 2003||Digimarc Corporation||Reconfiguring a watermark detector|
|US6760463 *||17 Jan 2001||6 Jul 2004||Digimarc Corporation||Watermarking methods and media|
|1||"National Semiconductor and EPR Partner for Information Metering/Data Security Cards" Mar. 4, 1994, Press Release from Electronic Publishing Resources, Inc.|
|2||Abadi, M. et al., "Authentication and Delegation with Smart-cards", 1990, Research Report DEC Systems Research Center.|
|3||Brassil, Jack T., et al., "Electronic Marking and Identification Techniques to Discourage Document Copying", IEEE Journal on Selected Areas in Communications, IEEE Inc. New York, US, vol. 13, No. 8, Oct. 1, 1995 pp. 1495-1503.|
|4||Clark, P.C. and Hoffman, L.J., "Bits: A Smartcard Protected Operating System," Communications of the ACM, Nov. 1994, vol. 37, No. 11, pp. 66-70, and 94.|
|5||Clark, P.C. et al., "Bits: A Smartcard Protected Operating System", pp. 66-70 and 94, Nov. 1994, Communications of the ACM, vol. 37, No. 11.|
|6||European Search Report Dated Aug. 6, 2003.|
|7||European Search Report for Corresponding European Application 95308422.5.|
|8||Flasche, U. et al., "Decentralized Processing of Documents", pp. 119-131, 1986, Comput. & Graphics, vol. 10, No. 2.|
|9||Flasche, U. et al., Decentralized Processing of Documents, Comput. & Graphics, vol. 10, No. 2, 1986, pp. 119-131.|
|10||Griswold, G., "A Method for Protecting Copyright on Networks", pp. 169-178, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|11||Griswold, G.N., "A Method for Protecting Copyright on Networks," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 169-178.|
|12||Hilts, P. et al., "Books While U Wait", pp. 48-50, Jan. 3, 1994, Publishers Weekly.|
|13||Hilts, P., Mutter, J., and Taylor, S., "BOOKS While U Wait," Publishers Weekly, Jan. 3, 1994, pp. 48-50.|
|14||Kahn, R., "Deposit, Registration and Recordation in an Electronic Copyright Management System", pp. 111-120, Jan. 1994, IMA Intellectural Property Project Proceedings, vol. 1, Issue 1.|
|15||Kahn, R.E., "Deposit, Registration and Recordation in an Electronic Copyright Management System", pp. 1-19, Aug. 1992, Corporation for National Research Initiatives, Virginia.|
|16||Kahn, R.E., "Deposit, Registration And Recordation In An Electronic Copyright Management System," Corporation for National Research Initiatives, Virginia, Aug. 1992, pp. 1-19.|
|17||Kahn, R.E., "Deposit, Registration and Recordation in an Electronic Copyright Mangement System," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 111-120.|
|18||Linn, R., "Copyright and Information Services in the Context of the National Research and Education Network", pp. 9-20, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|19||Linn, R.J., "Copyright and Information Services in the Context of the National Research and Education Network<SUP>1</SUP>, " IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 9-20.|
|20||Mark Stefik, "Letting Loose the Light: Igniting Commerce in Electronic Publication", pp. 219-253, 1996, Internet Dreams: Archetypes, Myths, and Metaphors, IDSN 0-262-19373-6.|
|21||Mark Stefik, "Letting Loose the Light: Igniting Commerce in Electronic Publication", pp. 2-35, Feb. 8, 1995, Internet Dreams: Archetypes, Myths and Metaphors.|
|22||Mori, R. et al., "Superdistribution: The Concept and the Architecture", pp. 1133-1146, 1990, The Transactions of.|
|23||Mori, R. et al., Superdistribution: The Concept and the Architecture, The Ttransactions of the IEICE, vol. E 73, No. 7, 1990, Tokyo, JP, pp. 1133-1146.|
|24||Nelson, T., "A Publishing and Royalty Model for Networked Documents", pp. 257-259, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|25||Nelson, T.H., "A Publishing and Royalty Model for Networked Documents," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 257-259.|
|26||O'Conner, M., "New Distribution Option for Electronic Publishers; iOpener Data Encryption and Metering System for CD-ROM use; Column", pp. 134, Mar. 1994, CD-ROM Professional, vol. 7, No. 2, ISSN: 1409-0833.|
|27||O'Conner, M.A., "New distribution option for electric publishers; iOpener data encryption and metering system for CD-ROM use; Column," CD-ROM Professional, Copyright, Mar. 1994, vol. 7; No. 2; p. 134; ISSN: 1049-0833.|
|28||Perrit, Jr., H., "Permission Headers and Contract Law", pp. 27-48, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|29||Perritt, Jr., H.H., "Permissions Headers and Contract Law," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 27-48.|
|30||Press Release From Electronic Publishing Resources, Inc. (EPR) entitled "National Semiconductor and EPR Partner for Information Metering/Data Security Cards", dated Mar. 4, 1994.|
|31||Robinson, E., "Redefining Mobile Computing", pp. 238-240, 247-248 and 252, Jul. 1993, PC Computing.|
|32||Ross, P.E., "Data guard", Forbes, Jun. 6, 1994, pp 101.|
|33||Ross, P.E., "Data Guard", pp. 101, Jun. 6, 1994, Forbes.|
|34||Saigh, W.K., "Knowledge is Sacred", 1992, Video Pocket/Page Reader Systems, Ltd.|
|35||Saigh, W.K., "Knowledge is Sacred," Video Pocket/Page Reader Systems, Ltd., 1992.|
|36||Simmel, S. et al., "Metering and Licensing of Resources: Kala's General Purpose Approach", pp. 81-110, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|37||Simmel, S.S., and Godard, I., "Metering and Licensing of Resources: Kala's General Purpose Approach," IMA Intellectual Proeprty Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 81-110.|
|38||Sirbu, M., "Internet Billing Service Design and prototype Implementation", pp. 67-80, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|39||Sirbu, M.A., "Internet Billing Service Design and Prototype Implementation," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 67-80.|
|40||Strattner, A, "Cash Register on a Chip may Revolutionize Software Pricing and Distribution; Wave Systems Corp.", pp. 62, Apr. 1994, Computer Shopper, vol. 14, No. 4, ISSN 0886-0556.|
|41||Strattner, A., 'Cash register on a chip may revolutionize software pricing and distrubition; Wave Systems Corp.,' Computer Shopper. Copyright, Apr. 1994, vol. 14; No. 4; p. 62; ISSN 0886-0556.|
|42||Tygar, J.D., and Bennet, Y., "Dyad: A System for Using Physically Secure Coprocessors," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 121-152.|
|43||Tygar, J: et al., "Dyad: A System for Using Physically Secure Coprocessors", pp. 121-152, Jan. 1994, IMA Intellectual Property Project Proceedings, vol. 1, Issue 1.|
|44||Upthegrove, L., "Intellectual Property Header Descriptors: A Dynamic Approach", pp. 63-66, Jan. 1994, IMA Intellectual Property Proceedings, vol. 1, Issue 1.|
|45||Upthegrove, L., and Roberts, R., "Intellectual Property Header Descriptors: A Dynamic Approach," IMA Intellectual Property Project Proceedings, Jan. 1994, vol. 1, Issue 1, pp. 63-66.|
|46||Weber, R., "Digital Rights Management Technology" Oct. 1995.|
|47||Weber, R., "Digital Rights Management Technology", Oct. 1995.|
|48||Weber, R., "Metering Technolgies For Digital Intellectual Property," A Report to the International Federation of Reproduction Rights Organizations, Oct. 1994, pp. 1-29.|
|49||Weber, R., "Metering Technologies for Digital Intellectual Property", pp. 1-29, Oct. 1994, A Report to the International Federation of Reproduction Rights Organizations.|
|50||Willet, S., '"Metered PCs: Is your system watching you?"; Wave Systems beta tests new technology,' InfoWorld, Copyright, May 2, 1994, p. 84.|
|51||Willett, S., "Metered PCs: Is Your System Watching You? Wave System beta tests new technology", pp. 84, May 2, 1994, InfoWorld.|
|Citing Patent||Filing date||Publication date||Applicant||Title|
|US7337321 *||29 Aug 2002||26 Feb 2008||Hitachi, Ltd.||Digital content protection using invisible and visible watermarks|
|US7349553 *||21 Apr 2003||25 Mar 2008||The Boeing Company||Watermarks for secure distribution of digital data|
|US7487128 *||11 Oct 2005||3 Feb 2009||International Business Machines Corporation||Updating usage conditions in lieu of download digital rights management protected content|
|US7610382||30 Jun 2006||27 Oct 2009||Amazon Technologies, Inc.||System and method for marking content|
|US7650510 *||29 Apr 2003||19 Jan 2010||General Dynamics Advanced Information Systems, Inc.||Method and apparatus for in-line serial data encryption|
|US7818261||20 Jun 2006||19 Oct 2010||Corbis Corporation||Method and system for managing licenses to content|
|US7917484||31 Mar 2005||29 Mar 2011||Amazon Technologies, Inc.||Individualized digital tracers|
|US8040541 *||6 Aug 2003||18 Oct 2011||Polestar, Ltd.||Secure document printing|
|US8925108||15 Apr 2013||30 Dec 2014||Adobe Systems Incorporated||Document access auditing|
|US8935796||14 Mar 2008||13 Jan 2015||Microsoft Corporation||Segment based digital content protection|
|US20020147922 *||9 Apr 2001||10 Oct 2002||Andreas Hartinger||Software protection mechanism|
|US20030118182 *||21 Dec 2001||26 Jun 2003||Timo Elomaa||Distribution of content|
|US20030191941 *||29 Aug 2002||9 Oct 2003||Koichi Terada||Data transmitting apparatus, contents distribution apparatus, contents distribution system, digital contents distribution method and data storage apparatus|
|US20030202679 *||21 Apr 2003||30 Oct 2003||The Boeing Company||Watermarks for secure distribution of digital data|
|US20040025024 *||21 Jul 2003||5 Feb 2004||Jun Hirai||Information processing apparatus and information processing method|
|US20040030564 *||3 May 2001||12 Feb 2004||Andreas Hartinger||Licensing and access authorization|
|US20040054914 *||29 Apr 2003||18 Mar 2004||Sullivan Patrick L.||Method and apparatus for in-line serial data encryption|
|US20040080777 *||6 Aug 2003||29 Apr 2004||Smith Wendell M.||Secure document printing|
|US20040169892 *||26 Feb 2004||2 Sep 2004||Fuji Photo Film Co., Ltd.||Device and method for generating a print, device and method for detecting information, and program for causing a computer to execute the information detecting method|
|US20040236705 *||26 Feb 2004||25 Nov 2004||Toshihiro Shima||Device accounting system|
|US20060089912 *||11 Oct 2005||27 Apr 2006||International Business Machines Corporation||Updating usage conditions in lieu of download digital rights management protected content|
|US20070043675 *||24 Aug 2006||22 Feb 2007||Siemens Aktiengesellschaft||Software license manager|
|US20070078775 *||14 Sep 2006||5 Apr 2007||Huapaya Luis M||System and method for preventing unauthorized use of digital works|
|US20070168513 *||20 Jun 2006||19 Jul 2007||Corbis Corporation||Method and system for managing licenses to content|
|US20070263240 *||15 Dec 2006||15 Nov 2007||Fuji Xerox Co., Ltd.||Image-Forming Apparatus, Image-Forming Control Method, Image-Forming Control Program Storage Medium, Image-Forming Control Data Signal, And Image-Forming Control Apparatus|
|US20070297014 *||15 Jun 2007||27 Dec 2007||Takeshi Kuga||Image processing system and image processing method|
|US20080133417 *||5 Apr 2002||5 Jun 2008||Emergent Music Llc||System to determine quality through reselling of items|
|US20080212780 *||2 Jun 2006||4 Sep 2008||Koninklijke Philips Electronics, N.V.||Homomorphic Encryption For Secure Watermarking|
|US20090235361 *||14 Mar 2008||17 Sep 2009||Microsoft Corporation||Segment based digital content protection|
|US20090254553 *||2 Feb 2009||8 Oct 2009||Corbis Corporation||Matching media for managing licenses to content|
|US20130247218 *||2 Dec 2011||19 Sep 2013||Qryptal Pte Ltd||System And Method For Verifying Authenticity Of Documents|
|U.S. Classification||380/231, 713/176|
|International Classification||H04N21/8358, G06K9/00, H04N1/32, G06T1/00, G07F7/00, G07F17/16|
|Cooperative Classification||G06F21/10, H04N2201/3269, H04N2201/3236, H04N1/32144, G07F17/0014, G06T2201/0064, G06Q20/14, H04N21/8358, G07F17/16, G06F17/30017, G06T1/0021|
|European Classification||G07F17/00C, H04N21/8358, G06F21/10, G06Q20/14, G06F17/30E, H04N1/32C19, G07F17/16, G06T1/00W|
|14 Oct 2009||FPAY||Fee payment|
Year of fee payment: 4
|9 Feb 2012||AS||Assignment|
Owner name: CONTENTGUARD HOLDINGS, INC., DELAWARE
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:XEROX CORPORATION;REEL/FRAME:027680/0842
Effective date: 20000131
Owner name: XEROX CORPORATION, CONNECTICUT
Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:STEFIK, MARK J.;PETRIE, GLEN W;OKAMOTO, STEVE A;AND OTHERS;SIGNING DATES FROM 19980318 TO 19980320;REEL/FRAME:027680/0514
|10 Oct 2013||FPAY||Fee payment|
Year of fee payment: 8